OWASP Top 10

• A1-Injection
• A2-Broken Authentication
• A3-Cross-Site Scripting (XSS)
• A4-IDOR
• A5-Security Misconfiguration
• A6-Sensitive Data Exposure
• A7-Missing Function Level Access
• A8-Cross-Site Request Forgery
• A9-Using Components with Known Vulnerabilities
• A10-Unvalidated URL Redirects

© 2017 NotSoSecure Global Services Limited. All rights reserved. NotSoSecure Global Services Limited, CB1 Business Centre, Twenty Station Road, Cambridge, CB1 2JD, UK